$ rpki-client -vvf rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft File: rMARlDOHfwx0KFe46lIPjaTtCVo.mft (raw, json) Hash identifier: g7iMvcLoumZ1HV3eX+Clyd+jGdqjhD8M2+P7/pwHKzw= Subject key identifier: D3:F7:33:A1:27:B6:B5:0A:D7:2B:AC:B4:08:20:BD:57:2A:01:09:D0 Authority key identifier: AC:C0:11:94:33:87:7F:0C:74:28:57:B8:EA:52:0F:8D:A4:ED:09:5A Certificate issuer: /CN=A915A5E7/serialNumber=ACC0119433877F0C742857B8EA520F8DA4ED095A Certificate serial: 0666 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft Manifest number: 065E Signing time: Wed 02 Jul 2025 22:48:50 +0000 Manifest this update: Wed 02 Jul 2025 22:48:49 +0000 Manifest next update: Wed 09 Jul 2025 22:48:49 +0000 Files and hashes: 1: rMARlDOHfwx0KFe46lIPjaTtCVo.crl (hash: 3Ke1fZgfKfNNibZRwDcdWtsXrzhxTF/oepwVlf78w+o=) 2: 1E1A1DB28C6A11EB91832D52C4F9AE02.roa (hash: 08/pz9r7rFsunGYiDiFExkUJ+XdUECI3LN6zHYHXOm4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.crl rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:48:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1638 (0x666) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A5E7, serialNumber=ACC0119433877F0C742857B8EA520F8DA4ED095A Validity Not Before: Jul 2 22:48:49 2025 GMT Not After : Jul 9 22:48:49 2025 GMT Subject: CN=6865b751-5c27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ea:73:1a:cc:b7:d3:b3:9b:40:dc:27:4c:26: d1:67:fc:91:77:16:5c:c5:cd:7b:89:0f:a7:e5:c5: f9:4a:f8:c5:4c:c5:0e:8b:bb:1b:fc:ba:c3:62:f9: be:2d:68:9a:7f:48:9c:50:b7:69:6f:d7:ca:cd:cd: 9d:fb:57:11:31:3c:65:a3:64:fd:83:b6:46:15:5e: ad:27:c2:0e:d0:cc:8b:45:f6:ff:f4:bc:ad:5d:4a: 8f:9f:56:56:d6:31:a4:d6:a1:63:05:55:15:a4:1f: 8f:57:7f:48:c8:9b:d4:3d:90:43:91:02:9a:7a:96: e5:21:c9:4e:ba:2e:3f:a8:45:0a:b6:f2:a2:4c:cd: c0:07:05:f7:8c:67:54:0f:56:42:b4:4f:c3:9a:95: de:dc:df:c7:ec:64:71:8f:de:a7:fc:85:3c:f7:40: 81:dd:51:e0:78:f7:6f:94:a5:8b:b3:fa:a7:5d:e3: cd:41:f2:0b:12:da:7e:49:80:d5:84:2e:93:2d:67: e6:55:b5:b9:bc:b1:ff:6c:4d:ec:19:89:d8:2b:35: 5d:53:59:ab:c6:94:f0:ac:59:cb:9e:61:4e:8e:04: 1a:51:f2:3d:8d:cf:8d:7e:51:6d:ee:92:e6:7e:f5: c0:1a:c1:71:d6:08:ae:92:23:2b:f2:58:b0:43:c3: 0d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:F7:33:A1:27:B6:B5:0A:D7:2B:AC:B4:08:20:BD:57:2A:01:09:D0 X509v3 Authority Key Identifier: keyid:AC:C0:11:94:33:87:7F:0C:74:28:57:B8:EA:52:0F:8D:A4:ED:09:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:7b:2a:3c:a7:23:a7:3f:ae:8a:27:5b:ba:fc:a3:84:c9:27: 8c:87:f6:fc:ba:ec:3c:e0:3b:9b:ff:df:f1:21:51:0f:a9:7a: 48:95:a6:02:5f:84:11:40:85:1f:3f:f0:50:bd:5b:8a:34:ee: 70:13:6e:eb:1b:c8:9e:b5:40:ce:b6:a3:68:70:38:b6:13:cc: 47:0f:eb:23:7a:d2:51:6f:4f:55:36:15:84:0d:e3:7e:3b:da: da:5e:cb:3c:3b:b6:b8:4f:ab:ab:cc:e1:63:58:68:e3:bf:46: 75:d7:71:9b:84:a9:10:b6:87:ea:76:d4:4e:4f:43:77:9c:78: 2c:57:11:e6:f2:f3:a7:fd:11:e5:c3:27:31:ae:f5:4b:b4:15: fb:9f:6d:19:d5:df:d8:3d:bf:47:0f:af:4a:af:cc:85:f8:7b: dc:74:da:24:24:90:59:64:6b:a8:5f:53:ad:2d:71:c0:c0:12: f1:fc:0e:b9:7b:a1:c9:15:ee:c8:f4:f9:f4:ff:5a:74:97:5d: 19:09:ae:70:04:3d:37:c6:76:d1:14:d3:e1:bb:34:9b:10:2d: 5c:7d:aa:11:be:32:56:1e:09:c4:d4:d7:2a:b2:b4:85:7b:82: 45:97:6a:08:da:69:90:83:e0:36:67:29:dd:92:4b:d4:d2:4f: 2d:17:27:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1RTcxMTAvBgNVBAUTKEFDQzAxMTk0MzM4NzdGMEM3NDI4NTdCOEVBNTIwRjhE QTRFRDA5NUEwHhcNMjUwNzAyMjI0ODQ5WhcNMjUwNzA5MjI0ODQ5WjAYMRYwFAYD VQQDEw02ODY1Yjc1MS01YzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOpzGsy307ObQNwnTCbRZ/yRdxZcxc17iQ+n5cX5SvjFTMUOi7sb/LrDYvm+ LWiaf0icULdpb9fKzc2d+1cRMTxlo2T9g7ZGFV6tJ8IO0MyLRfb/9LytXUqPn1ZW 1jGk1qFjBVUVpB+PV39IyJvUPZBDkQKaepblIclOui4/qEUKtvKiTM3ABwX3jGdU D1ZCtE/DmpXe3N/H7GRxj96n/IU890CB3VHgePdvlKWLs/qnXePNQfILEtp+SYDV hC6TLWfmVbW5vLH/bE3sGYnYKzVdU1mrxpTwrFnLnmFOjgQaUfI9jc+NflFt7pLm fvXAGsFx1giukiMr8liwQ8MNNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNP3M6En trUK1yustAggvVcqAQnQMB8GA1UdIwQYMBaAFKzAEZQzh38MdChXuOpSD42k7Qla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTVFNy9FOTU5REM3NjhD NjgxMUVCODcwNDJENTFDNEY5QUUwMi9yTUFSbERPSGZ3eDBLRmU0NmxJUGphVHRD Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JNQVJsRE9IZnd4MEtGZTQ2bElQamFUdENWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTVFNy9FOTU5REM3NjhDNjgxMUVCODcwNDJENTFDNEY5QUUwMi9yTUFSbERPSGZ3 eDBLRmU0NmxJUGphVHRDVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIeyo8pyOnP66KJ1u6/KOEySeMh/b8uuw84Dub/9/xIVEPqXpIlaYC X4QRQIUfP/BQvVuKNO5wE27rG8ietUDOtqNocDi2E8xHD+sjetJRb09VNhWEDeN+ O9raXss8O7a4T6urzOFjWGjjv0Z113GbhKkQtofqdtROT0N3nHgsVxHm8vOn/RHl wycxrvVLtBX7n20Z1d/YPb9HD69Kr8yF+HvcdNokJJBZZGuoX1OtLXHAwBLx/A65 e6HJFe7I9Pn0/1p0l10ZCa5wBD03xnbRFNPhuzSbEC1cfaoRvjJWHgnE1NcqsrSF e4JFl2oI2mmQg+A2ZyndkkvU0k8tFyfe -----END CERTIFICATE-----Generated at Thu Jul 3 10:23:56 2025 by rpki-client